Find a Question:

Ransomware focuses on Synology storage

Aug

4

2014

Different users of Synology systems complain that their nas been affected by ransomware. The malware, named Synolocker, encrypts files; users have to pay hundreds of dollars to. their files

Users complain on the forum of Synology that they can not in their files. The configuration page of their nas system is replaced by a warning that the files are encrypted, and that the user must pay to get the encryption key. Money Users would 0.6 bitcoin converted approximately 260 euros to pay for access. It is not clear whether users can gain access again after payment.

The method and the name of SynoLocker reminiscent of Crypto Locker, notorious ransomware that many users have taken. It is unknown how the SynoLocker spreads, but it is likely that ssh access or holes in the administration interface can be used to install the malware. This means that the shielding of the NAS via the router, the chance to be infected considerably reduced.

According to one user of the forum, there is a trick to get the Synology NAS working again, but he has not been able to get it. access to his files Vulnerabilities in Synology systems previously used among others to mine. Bitcoins and dogecoins Attackers could thus have half a million seized .